Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
File: PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft (raw, json)
Hash identifier: l7BmMUyk72ILICe5Rxqs40Dxig3FZZs9yAXw0i7WAOw=
Subject key identifier: C1:03:81:34:51:77:47:2A:9F:BB:9B:EF:F4:10:FC:FA:21:81:85:C7
Authority key identifier: 3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
Certificate issuer: /CN=3d8a553e05f0319bf452fa206c14ccda87304654
Certificate serial: 019CE6A4B39967F05C82715949FDFA458303
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
Manifest number: 1272
Signing time: Fri 13 Mar 2026 10:01:19 +0000
Manifest this update: Fri 13 Mar 2026 10:01:19 +0000
Manifest next update: Sat 14 Mar 2026 10:01:19 +0000
Files and hashes: 1: 7XPR057HTONIllGtY9NijiuY-tk.roa (hash: rKfjiDRkcr3HFT8PmmA3P0sCBQ3drFmQ5QDnLKCb/BE=)
2: PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl (hash: Z8NxzdJMJ3ldA/Jyy8eZfiwS66KiHESnGNT896SC0Ko=)
3: T4FApCxhFe83q9A7YZlC1nZYzIE.roa (hash: LjUt5usAgPWHNriSJWMg7OS8Oagi6w46/dUqLi/UEzA=)
4: Wn-ZLE8xGx2iUZq_8EgFIe3BY1M.roa (hash: SwGxPAdfidv7O5nNS+nKj4I72Qs5sJPeTh9qbwfsZWo=)
5: YuGYvjrFzLezHsgzIUZ0asWCqVk.roa (hash: aZLneGXD5YvsOe9tvMiGcrBxDYxxGmpY4vDCZwd72Z8=)
6: fLae4aR9HsO6ApeohQnbJHEsvgg.roa (hash: /b3Xi59hV2RbWadggK4I0wXvCWO8lTHkzV3V9hJ6K0Y=)
7: jccKxXf-KlBy0OODUdeGAP1Pln4.roa (hash: kXcgJH+D8EkeDblDPw+VtydCo7evj5I/OxvPnwmyUe8=)
8: r2cUyHBMaewNpNV3po9MOZwNcyU.roa (hash: SVkhtUySEPUVdVwXoSgDIclbqsQ0muf2pONZTDoO/YE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:a4:b3:99:67:f0:5c:82:71:59:49:fd:fa:45:83:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8a553e05f0319bf452fa206c14ccda87304654
Validity
Not Before: Mar 13 10:01:19 2026 GMT
Not After : Mar 14 10:01:19 2026 GMT
Subject: CN=c10381345177472a9fbb9beff410fcfa218185c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:93:34:44:17:de:6a:e5:9c:e5:f7:db:4c:59:
98:92:10:31:c9:3d:0d:32:e1:c9:94:78:bc:ba:2f:
00:af:5c:09:fe:bf:58:d2:6d:9f:94:eb:e4:ed:85:
17:3c:67:de:77:a7:cf:09:50:a4:e6:5b:16:46:d4:
57:64:84:24:a2:09:e1:e3:cf:71:12:b1:4f:69:15:
74:4e:56:ea:7f:fc:7f:d1:84:2f:4f:0b:7b:18:dc:
67:3b:ce:1d:16:31:4b:31:92:bf:18:bc:74:24:e1:
52:f4:d1:17:62:d1:b5:71:24:e0:5d:56:21:60:89:
fd:bc:10:b2:cb:aa:cb:a2:0f:b1:6e:5b:95:92:38:
32:a4:7f:f1:fe:8d:d9:85:3f:8e:03:50:41:8e:44:
69:6c:dc:7b:f2:e3:93:2b:f0:56:7f:fc:f0:8b:b6:
19:5a:d9:b0:c5:79:2b:d2:08:6f:4b:0d:15:c3:fc:
6a:67:d8:c7:e9:16:1d:37:15:df:fa:e4:fb:a7:20:
31:47:77:63:70:a7:07:30:fe:5e:56:49:2e:70:91:
6b:91:56:12:25:5b:f0:ff:e8:b4:e1:91:e6:a3:c8:
12:ce:1c:a5:db:b2:13:f2:e8:85:f9:70:ab:e5:28:
dc:88:64:9e:d2:e2:56:3c:da:2b:d4:6a:9c:75:25:
3d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:03:81:34:51:77:47:2A:9F:BB:9B:EF:F4:10:FC:FA:21:81:85:C7
X509v3 Authority Key Identifier:
keyid:3D:8A:55:3E:05:F0:31:9B:F4:52:FA:20:6C:14:CC:DA:87:30:46:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYpVPgXwMZv0UvogbBTM2ocwRlQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/52ce54-e49c-411c-8527-0fb4823f5b87/1/PYpVPgXwMZv0UvogbBTM2ocwRlQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:2a:b9:56:7e:10:4b:91:e6:4f:8c:ce:2d:da:62:15:a2:e1:
35:ba:18:27:b3:1e:33:8c:b0:f9:0c:50:e9:04:49:fe:20:62:
7f:38:26:68:72:99:28:99:a4:61:1c:a4:42:dc:ac:54:ac:8d:
04:6d:7a:77:53:f5:19:d7:68:aa:f7:95:69:a2:77:82:9c:b1:
e5:48:bb:5d:cc:fc:b5:ae:4b:1b:f9:cc:3e:02:c4:42:8c:b1:
1f:d9:97:61:b6:92:21:52:bb:6f:28:1f:74:7a:5a:ba:49:6a:
36:53:6b:d9:72:0e:2d:3f:f6:aa:f8:ac:6e:22:70:28:af:60:
03:f0:4b:e5:bd:66:3e:44:ce:16:83:39:ea:5a:84:86:06:76:
09:16:2c:3d:a1:06:7e:4c:d3:50:66:4f:bf:73:08:d4:12:d2:
f6:c6:fd:df:a2:e8:60:fa:ac:5b:a9:2b:27:2e:19:9b:34:95:
a6:23:c3:62:97:0a:21:87:08:73:86:81:fc:77:4f:5b:75:e4:
50:7f:10:a9:76:c7:a0:90:c1:00:db:b2:c1:3b:cb:c9:75:cb:
d9:e4:9e:04:91:7d:05:4e:e9:63:92:fa:fa:ca:d6:1c:29:63:
4f:29:83:81:4c:3a:65:41:4d:cf:1e:f4:d5:b2:44:88:fc:af:
c5:c0:96:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 12:31:30 2026 by rpki-client